Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0956

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2001-0956
Last Modified 05 Sep 2008 04:25:19
Published 11 Sep 2001 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-0956

Summary

speechd 0.54 and earlier, with the Festival or rsynth speech synthesis package, allows attackers to execute arbitrary commands via shell metacharacters.

Vulnerable Systems

Application

  • Speechio Speechd 0.54


References

XF - speechd-execute-commands(7121)

BID - 3326

BUGTRAQ - 20010911 security alert: speechd from speechio.org

CONFIRM - http://www.speechio.org/speechd.html


Last Updated: 27 May 2016 10:36:28